Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
200591 6.1 警告
Network 		マイクロソフト - Microsoft Exchange Outlook Web Access におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-0110 2017-03-22 14:35 2017-03-14 Show GitHub Exploit DB Packet Storm
200592 8.1 重要
Network 		マイクロソフト - 複数の Microsoft Windows Server の iSNS Server サービスにおける悪意のあるリクエストを発行される脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2017-0104 2017-03-22 14:20 2017-03-14 Show GitHub Exploit DB Packet Storm
200593 7.8 重要
Local 		マイクロソフト - 複数の Microsoft Windows 製品の Helppane.exe の DCOM オブジェクトにおける権限昇格の脆弱性 CWE-287
不適切な認証 		CVE-2017-0100 2017-03-22 14:20 2017-03-14 Show GitHub Exploit DB Packet Storm
200594 4.3 警告
Network 		マイクロソフト - 複数の Microsoft Windows 製品の DNS クライアントにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2017-0057 2017-03-22 14:20 2017-03-14 Show GitHub Exploit DB Packet Storm
200595 7.8 重要
Local 		マイクロソフト - Microsoft Windows Vista および Windows Server 2008 における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-0039 2017-03-22 14:20 2017-03-14 Show GitHub Exploit DB Packet Storm
200596 5.5 警告
Local 		マイクロソフト - Microsoft Windows 10 および Windows Server 2016 の Device Guard における PowerShell スクリプトを変更される脆弱性 CWE-20
不適切な入力確認 		CVE-2017-0007 2017-03-22 14:20 2017-03-14 Show GitHub Exploit DB Packet Storm
200597 7 重要
Local 		マイクロソフト - 複数の Microsoft Windows 製品のカーネル API における権限昇格の脆弱性 CWE-119
バッファエラー 		CVE-2017-0103 2017-03-22 14:15 2017-03-14 Show GitHub Exploit DB Packet Storm
200598 7.8 重要
Local 		マイクロソフト - 複数の Microsoft Windows 製品における権限昇格の脆弱性 CWE-119
バッファエラー 		CVE-2017-0102 2017-03-22 14:15 2017-03-14 Show GitHub Exploit DB Packet Storm
200599 7.8 重要
Local 		マイクロソフト - 複数の Microsoft Windows 製品のトランザクション マネージャのカーネルモードドライバにおける権限昇格の脆弱性 CWE-119
バッファエラー 		CVE-2017-0101 2017-03-22 14:15 2017-03-14 Show GitHub Exploit DB Packet Storm
200600 5.4 警告
Adjacent 		マイクロソフト - 複数の Microsoft Windows 製品の Hyper-V におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2017-0097 2017-03-22 13:45 2017-03-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291491 - openx openx Open redirect vulnerability in the header function in adclick.php in OpenX 2.8.10 and earlier allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL i… NVD-CWE-Other
CVE-2014-2230 2024-11-21 11:05 2014-10-23 Show GitHub Exploit DB Packet Storm
291492 - iii vtls-virtua Multiple SQL injection vulnerabilities in the login in web_reports/cgi-bin/InfoStation.cgi in Innovative vtls-Virtua before 2013.2.4 and 2014.x before 2014.1.1 allow remote attackers to execute arbit… CWE-89
SQL Injection 		CVE-2014-2081 2024-11-21 11:05 2014-10-21 Show GitHub Exploit DB Packet Storm
291493 - seeddms seeddms Multiple directory traversal vulnerabilities in SeedDMS (formerly LetoDMS and MyDMS) before 4.3.4 allow (1) remote authenticated users with access to the LogManagement functionality to read arbitrary… CWE-22
Path Traversal 		CVE-2014-2279 2024-11-21 11:05 2014-10-18 Show GitHub Exploit DB Packet Storm
291494 - seeddms seeddms Unrestricted file upload vulnerability in op/op.AddFile2.php in SeedDMS (formerly LetoDMS and MyDMS) before 4.3.4 allows remote attackers to execute arbitrary code by uploading a file with an executa… CWE-20
 Improper Input Validation  		CVE-2014-2278 2024-11-21 11:05 2014-10-18 Show GitHub Exploit DB Packet Storm
291495 - jenkins jenkins The doIndex function in hudson/util/RemotingDiagnostics.java in CloudBees Jenkins before 1.551 and LTS before 1.532.2 allows remote authenticated users with the ADMINISTER permission to obtain sensit… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-2068 2024-11-21 11:05 2014-10-18 Show GitHub Exploit DB Packet Storm
291496 - jenkins jenkins Session fixation vulnerability in Jenkins before 1.551 and LTS before 1.532.2 allows remote attackers to hijack web sessions via vectors involving the "override" of Jenkins cookies. CWE-287
Improper Authentication 		CVE-2014-2066 2024-11-21 11:05 2014-10-18 Show GitHub Exploit DB Packet Storm
291497 - jenkins jenkins Cross-site scripting (XSS) vulnerability in Jenkins before 1.551 and LTS before 1.532.2 allows remote attackers to inject arbitrary web script or HTML via the iconSize cookie. CWE-79
Cross-site Scripting 		CVE-2014-2065 2024-11-21 11:05 2014-10-18 Show GitHub Exploit DB Packet Storm
291498 - jenkins jenkins The loadUserByUsername function in hudson/security/HudsonPrivateSecurityRealm.java in Jenkins before 1.551 and LTS before 1.532.2 allows remote attackers to determine whether a user exists via vector… CWE-200
Information Exposure 		CVE-2014-2064 2024-11-21 11:05 2014-10-18 Show GitHub Exploit DB Packet Storm
291499 - jenkins jenkins Jenkins before 1.551 and LTS before 1.532.2 allows remote attackers to conduct clickjacking attacks via unspecified vectors. NVD-CWE-noinfo
CVE-2014-2063 2024-11-21 11:05 2014-10-18 Show GitHub Exploit DB Packet Storm
291500 - jenkins jenkins Jenkins before 1.551 and LTS before 1.532.2 does not invalidate the API token when a user is deleted, which allows remote authenticated users to retain access via the token. CWE-287
Improper Authentication 		CVE-2014-2062 2024-11-21 11:05 2014-10-18 Show GitHub Exploit DB Packet Storm